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(54) System and method for verifying signatures on documents 

(57) A system and method are provided for produc- 
ing verified signatures on documents such as checks 
and aff idavits. Initially, a customer who is to obtain a ver- 
ified signature, at some point In time, registers with a 
signatory authority, and a seaet key. having public and 
private components, is established uniquely for that 
customer. When a document requires a verified signa- 
ture, the customer presents the document and proof of 
his/her identity, such as a preprogrammed computer- 
interfacable card, to a signature system. Typically, such 
a system is to be availatjie at an institution, such as an 
office, bank, or post office, where such services will rou- 
tinely be used. The system accesses the archive of the 
private portion of the customer's key, and generates an 
encoded signature based, in part, on the content of the 
document. Accordingly, when a recipient of the docu- 
ment later wishes to verify the signature, the recipient 
uses the customer's public key to decode the signature. 
It is then straightfonward to verify the signature against 
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While the invention is primarily disclosed as a 
method, it will be understood by a person of ordinary 
skill in the art that an apparatus, such as a conventional 
data processor, including a CPU, memory, I/O, program 
storage, a connecting bus, and other appropriate com- 
ponents, could be programmed or othenwise designed 
lo facilitate the practice of the method of the invention. 
Such a processor would include appropriate program 
means for executing the method of the invention. 

Also, an article of manufacture, such as a pre- 
recorded disk or other similar conputer program prod- 
uct, for use with a data processing system, could 
include a storage medium and program means 
recorded thereon for directing the data processing sys- 
tem to facilitate the practice of the method of the inven- 
tion It will be understood that such apparatus and 
articles of manufacture also fall within the scope of the 
claims. 

Brief Description of the Drawings 

FIG. 1 is a high-level flowchart showing the method 
of the invention. 

FIG. 2 is a flowchart showing a more detailed inple- 
mentation of a step of the flowchart of FIG. 1 . 

FIG. 3 is a flowchart showing a more detailed imple- 
mentation of a step of the flowchart of FIG. 1 . 

FIG. 4 is a block diagram of a system for practising 
the method of the invention. 

Description of the Preferred Embodiment 

In accordance with the invention, a signature is 
generated for a document, using a secret key. The 
secret key is preferably implemented as per the well- 
known public/private key system of RSA Data Security, 
which is well-known in the field of ayptography. In such 
a system, a given customer is assigned a unique secret 
key. having a public key and a private key component. 

It is a characteristic of the key components that, if 
either one is used to encrypt a plaintext message, the 
other decodes the encrypted message. Further, given 
the public key component, it is computationally infeasi- 
ble to generate the private key component. 

Therefore, a sender can encrypt a message 
intended only for the eyes of a recipient, using a recipi- 
ent's public key, and send the encrypted message, 
knowing that only the recipiei-.l Iia& ilie privaie key nec- 
essary to decrypt the message. On the other hand, a 
sender can encrypt a message using the serxier's pri- 
vate key. so that any recipient who decrypts the mes- 
sage using the sender's public key knows that the 
message must have originated from the sender, 
because only the sender has the sender's private key. 

The method of the invention takes advantage of the 
workings of such a scheme, by using the latter charac- 
teristic, to establish with certainty that the signature is 
that of the sender, or of a sender's authorized agent. 

FIG. 1 is a high level flowchart of the method of the 



invention. Separate steps, which form novel and non- 
obvious aspects of the invention, take place at different 
times. The steps shown in FIG. 1 are grouped, based on 
times at which the steps preferably take place. 

5 Initially, step 2 of the method includes establishing 
and maintaining a secret key, such as the public^rivate 
key referred to above, associated with a respective cus- 
tomer, who is to provide a document requiring a signa- 
ture. Preferafcdy. a datatjase of such keys is established, 

10 each customer having a public key, available to any 
Interested party, and a private key, known only to the 
customer. The private key is archived in a suitably 
secure way, and the put>lic key is made available to the 
public. 

15 A preferred format for the public key is a two-dimen- 
sional code signed with a system key which is main- 
tained by the system, and over which an authorized 
system administrator has control. 

Also, a customer can request that his/her key be 

20 notarized. This is preferably done as follows: the cus- 
tomer presents the two<limensional code signed with 
the system key, and proof of the customer's identity, to 
an authority. The authority then produces a two-dimen- 
sional encoding of the key presented, signed with the 

25 private key of the authority. 

It is expected that, in typical, preferred implementa- 
tions of the invention, step 2 takes place as a customer 
registers for services provided by the invention, possibly 
before the customer has a document for which he/she 

30 requires a verified signature. 

When such a database is in place, a customer pro- 
vides a document for a signature (step 4) . Step 3 of FIG. 

1, which collectively incorporates steps 4, 6. and 8. 
shows the activities associated with generating the sig- 

35 nature. 

In step 6. a digital signature is generated for the 
document, using the customer's secret key. Preferably 
the private key conponent of the customer's secret key 
is used. Also, the signature is preferably generated 

40 using, as input information, data pertaining to the docu- 
ment itself, such as a scanned bit map of the document. 
Therefore, the signature produced by step 6 is unique to 
the customer by virtue of its use of the customer's pri- 
vate key, as well as being unique to the document, by 

45 virtue of being leased on the content of the document. 
Accordingly, the signature is denrranstrably authentic 
with regard to both the document and the customer. 
A preieired impieiVieniatioi i o' "tep 6, given in FIG. 

2, includes producing a two-dimensional encoding of 
50 the content of the document, as well as the signature 

. (step 20). The appropriate ^uthor ity responds with a 
receipt in the form of a hash of the information pre- 
*' sented. signed with the private key of the authority (step \ 
22). Accordingly, no further proof of the customer's 
55 identity needs to be shown. Thus, forms can be sent by 
mail. 

It is understood, also, that a signatory authority 
such as a notary public or other suitable official, can 
also produce a signature as described above. Such a 
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embodiments may occur to one skilled in the art without 
departing from the scope of the present invention as set 
forth in the following claims. 

Claims 

1 . A signature verification method for use with a docu- 
ment which is to bear a signature by a customer, 
the method being characterised by the steps of: 

maintaining a database (2) of keys associated 
with respective parties, including the customer, 
who are to make signatures that are to be veri- 
fied using the signature verification method of 
the invention, each of the keys including a 
securely archived private key and a publically 
available public key, 

generating a digital signature (6), employing 
the customer's private key; the signature being 
based on the content of the document; 

associating the signature (8) with the docu- 
ment; 

decoding the signature (10) based on the cus- 
tomer's public key, thereby verifying that the 
customer signed the document because the 
customer's private key was used; and 

verifying the content (12) of the document 
against the decoded signature, thereby verify- 
ing that the signature was made for the docu- 
ment. 

2. A signature verification method as recited in claim 
1 , wherein the step of maintaining a database of 
keys includes the steps of: 

generating a key; and 

notarizing the key. 

3. A signature verification method as recited in claim 1 
or 2, wherein: 

(i) the step of nr^intaining a database of keys 
includes the steps, oxcctjtcd for a cjstomer, of: 

generating a key pair including a private 
key and a put)lic key. storing the private key 
in a secure way. and 

outputting the pufcrfic key as a two<Jimen- 
sional code; and 

(ii) the step of notarizing includes the steps of: 

presenting the two<limensional code and 
proof of the customer's identity to an 



authorit y, the authority having a private 
key, 

generating a two<iimensional encoding 
5 (20) of the key presented, the encoding 

including a signature of the private key of 
the authority, and 

presenting the two-dimensional encoding 
10 (22) of the key^prSSTtedTsigned with the 

private key of the authority, as a receipt to 
the CL^tomer 

4. A signature verification method as recited in claim 
15 3, wherein the said two-dimensional code of the 

putH\c key is signed using a predetermined system 
key. 

5. A signature verification method as recited in any 
20 previous claims wherein the step of generating a 

digital signature includes establishing the cus- 
tomer's identity (32). 

6. A signature verification method as recited in claim 
25 5, wherein: 

the step of maintaining a database of keys 
includes issuing the customer an identity card 
programmed with information regarding the 
30 customer's identity; and 

the step of establishing the customer's identity 
includes: 

35 (i) establishing an interface (30) between 

the identity card and a signature system 
having an identity card interface and a user 
interface, and 

40 (ii) the user interactively performing an 

identification procedure (32). using the 
user interlace, wherein the user's identity 
is established based on the programming 
of the identity card. 

45 

7. Apparatus comprising a data processor including a 
CPU and memory and including stored program 
control designed to execute the method as claimed 
in any previous claim. 

so 

8. A data storage medium having program means 
recorded thereon and designed to direct a data 
processing system to execute the method as 
claimed in any one of claims 1 to 6. 
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